AMENDMENTS TO THE CLAIMS 



1 . (currently amended): A program product comprising: 

a computer useable medium having computer readable program code stored 
therein, the computer readable program code in said program product being effective 
when executing to: 

accept personality selection input provided by a user to the a computer 
which has a storage device adapted to store various data files and to assume a 
selected personality in the computer based on the provided input , wherein the 
personality selection input is not provided in response to a prompt provided in 
response to determining that a location of the computer has changed : 

tag files to be stored in the storage device according to the selected 
personality; and 

implement a filter which (a) passes files tagged according to the selected 
personality to an application executing within the computer and removes the 
tags applied by the code which is effective to tag files and which (b) blocks files 
not tagged according to the selected personality from being passed to the 
application executing within the computer . 

2. (original): The product of Claim 1 wherein the code which is effective to accept 
personality selection input is independent of user logon identity information. 

3. (original): The product of Claim 1 wherein the code which is effective to accept 
personality selection input accepts the input as a function of user logon identity 
information. 

4. (original): The product of Claim 1 wherein the code which is effective to tag files is 
code which appends characters to the data file name. 
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5. (original): A proogram product comprising: 

a computer useable medium having computer readable program code stored 

therein, the computer readable program code in said program product being effective 

when executing to: 

accept and authenticate input provided by a user selected from a plurality 
of personality selection inputs to a computer which has a storage device adapted 
to store various data files and assume a selected personality in the computer 
based on the provided input , wherein the input provided by the user is not 
provided in response to a prompt provided in response to determining that a 
location of the computer has changed : 

tag files to be stored in the storage device according to the selected 
personality wherein the contents of the tagged files are stored in an encrypted 
format on the storage device; and 

implement a filter which (a) passes files tagged according to the selected 
personality to an application executing within the computer and removes the tags 
applied by the code which is effective to tag files and decrypts the contents of 
tagged files which have been stored in an encrypted format on the storage 
device and which (b) blocks files not tagged according to the selected personality 
from being passed to the application executing within the computer : 

wherein, when at least one application is executed in the computer, a 
change in the selected personality based on the newly provided input does not 
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6. (original): . The product of Claim 5 wherein the code which implements the filter 
further passes files tagged as universal irrespective of the selected personality and 
thereby overrides the filter action (b) which otherwise blocks files not tagged according 
to the selected personality. 

7. (original): The product of Claim 6 wherein the code which implements the filter 
additionally passes all files when the selected personality is a universal personality and 
thereby further overrides the filter section (b) which otherwise blocks files not tagged 
according to the selected personality. 

8. (currently amended): The product of Claim 5 wherein a call to a cryptographic 
processor is made in a selected on e of th e authentication , of the input provided bv a 
user selected from a plutalitv of personality selection inputs, performed by the code 
which accepts and authenticates, the encryption performed by the code which 
implements the filter, and the decryption performed the code which implements the 
filter. 

9. (original): The product of Claim 8 wherein the cryptographic processor called is a 
trusted platform module. 

10. (original): The product of Claim 5 wherein the code which accepts and 
authenticates is code which is independent of user login identity information 

1 1 . (original): The product of claim 5 wherein the personality selection performed by 
the code which accepts adnd authenticates is a function of user login information. 

12. (original): The product of claim 5 wherein the code which is effective to tag files is 
code which appends characters to the data file name. 

13. (currently amended): A method comprising the steps of: 
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accepting personality selection input provided by a user to a computer which has 
a storage device adapted to store various data files and assuming a selected 
personality in the computer based on the provided input; 

tagging files to be stored in the storage device according to the selected 
personaliyt; and 

implementing a filter which (a) passes files tagged according to the selected 
personality to an application executing within the computer and removes the tagging 
applied in said tagging step and which (b) blocks files not tagged according to the 
selected personality from being passed to the application executing within the computer . 

14. (original): The method of Claim 13 wherein the accepting step is independent of 
user login identity information. 

15. (original): The method of Claim 13 wherein the accepting step accepts personality 
selection input as a function of user login identity information. 

16. (original): The method of claim 13 wherein said tagging is one which appends 
character to the data file name. 

17. (original): A method comprising the steps of: accepting and authenticating input 
provided by a user selected from a plurality of personality selection inputs to a computer 
which has a storage device adapted to store various data files and assuming a selected 
personality in the computer based on the provided input; 

tagging files to be stored in the storage device according to the selected 
personality wherein the contents of the tagged files are stored in an encrypted format on 
the storage device; and 

implementing a filter which (a) passes files tagged according to the selected 
personality and removes the tagging applied in said tagging step and decrypts the 
contents of tagged files which have been stored in an encrypted format on the storage 
device and which (b) blocks files not tagged according to the selected personality; 
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wherein, when at least one application is running in the computer, a change in 
the selected personally based on newly provided input does not require termination of 
the at least one application. 

18. (original): The method of Claim 17 wherein the filter implemented in said 
implementing step further passes files tagged as universal irrespective of the selected 
personality and thereby overrides the filter action (b) which otherwise blocks files not 
tagged according to the selected personality. 

19. (original) The method of Claim 18 wherein the filter implemented in said 
implementing step additionally passes all files when the selected personality is a 
universal personality and thereby further overrides the filter action (b) which otherwise 
blocks files not tagged according to the selected personality. 

20. (currently amended): The method of Claim 17 wherein a cryptographic processor is 
utilized in a selected on e of th e authentication performed in said filter implementing 
step, the encryption performed in said filter implementing step, and the decryption 
performed in said filter implementing step. 

21 . (original): The method of Claim 20 wherein the cryptographic processor is a trusted 
platform module. 

22. (original): The method of Claim 17 wherein the accepting and authenticating step is 
performed independent of user login identity information. 

23. (original): The method of claim 17 wherein the personality selection of said 
accepting and authenticating step is performed as a function of user login identity 
information. 
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24. (original): The method of Claim 17 wherein the tagging in said tagging step is one 
which appends characters to the data file name. 

25. (currently amended): Apparatus comprising: 

a personality switch which accepts personality selection input provided by a user 
and which indicates a selected personality based on the provided input in a computer 
having a storage device capable of storing various data files , wherein the personality 
selection input is not provided in response to a prompt provided in response to 
determining that a location of the computer has changed : 

a tagger which is coupled to said personaliyt switch and which tags files to be 
stored in the storage device by modifying the names of the files according to the 
selected personality as indicated by said personality switch; and 

a filter which is coupled to said personality switch and which (a) passes files 
tagged according to the selected personalit y, to an application executing within the 
computer, by restoring each file name to the name existing prior to the modification 
performed by said tagger and which (b) blocks files not tagged according to the selected 
personality from being passed to the application executing within the computer . 

26. (original): Apparatus of claim 25 wherein the personality switch accepts personality 
selection input independent of user login identity information. 

27. (original): Apparatus of claim 25 wherein the personality switch accepts personality 
selection input as a function of user login identity information. 

28. (original): Apparatus of Claim 25 wherein the data file name modification is one 
which appends characters to the data file name. 
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29. (original): Apparatus comprising: 

a personality selector which accepts and authenticates input provided by a user 
selected from a plurality of personality selection inputs and which indicates a selected 
personality based on the provided input to a computer having a storage device capable 
of storing various data files; 

a tagger which is coupled to said personality selector and which tags files to be 
stored in the storage device by modifying the names of the files according to the 
selected personality as indicated by said personality selector and which stores the 
contents of the tagged files in an encrypted format on the storage device; and 

a filter which is coupled to said personality selector and which (a) passes files 
tagged according to the selected personality by restoring each file name to the name 
existing prior to the modification performed by said tagger and by decrypting the 
contents of tagged files which have been stored in an encrypted format on the storage 
device and which (b) blocks files not tagged according to the selected personality; 

wherein, when at least one application is running in the computer, a change in 
the selected personality based on newly provided input does not require termination of 
the at least one application. 

30. (original): Apparatus of Claim 29 wherein said filter further passes files tagged as 
universal irrespective of the selected personality, thereby overriding the blocking (b) of 
files not tagged according to the selected personality. 

31. (original): Apparatus of Claim 30 wherein said filter additionally passes all files 
when the selected personality is a universal personality, thereby further overriding the 
blocking (b) of files not tagged according to the selected personality. 

32. (currently amended): Apparatus of Claim 29 wherein a cryptographic processor is 
utilized in a selected on e of th e authentication performed by said personality selector, 
the encryption performed by said filter, and the decryption performed by said filter. 
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33. (original): Apparatus of Claim 32 wherein the cryptographic processor is a trusted 
platform module. 

34. (original): Apparatus of Claim 29 wherein the personality switch accepts 
personality selection input independent of user login identity information. 

35. (original): Apparatus of Claim 29 wherein the personality switch accepts 
personality selection input as a function of user login identity information. 
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